MidnightBSD

Advisories for maxtom

CVE-2012-6498 MEDIUM

Unrestricted file upload vulnerability in index.php in Atomymaxsite 2.5 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file, as exploited in the wild in October 2012.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
maxtom atomymaxsite 1.50
maxtom atomymaxsite *
maxtom atomymaxsite 2.0